CA SSO Federation with JWT Token

CA SSO Federation with JWT Token (CA SSO as Idp)

(only with CA SSO 12.7)

When I’m writing this document, SWAT team and development are setting up a federation configuration in which the CA SSO environment is acting as Service Provider. If you need more details, please check it in the CA internal Validate site or contact your CA representative.

This document instead explains how to implement a federation use case using JWT where CA SSO is acting as an Identity Provider or, in OpenId terminology, OP (OpenId Provider).

Important note: this configuration does not requires any custom code, but use the standard Out-Of-The-Box features of CA SSO 12.7.

I was interested since was trying to setup a Client side SSO Federation partnership with an SSO IDC Provider. it is an internal community post "SSO Client Federation Partnership to SSO OpenIDC Provider" currently in experts forum, waiting for a bug fix - a search for that will find it. (The bug is about UserInfo call not compatible from an SSO client sending request to an SSO IDC Provider) Once we have the bugfix, I will post that article on SSO public forum.